With the new JailbreakMe.com method of jailbreak released, it seems that some people are already in the process of figuring out how it works. Once the exploitation method is disclosed to the public (it’s related to PDF handling), black hat hackers would be able to easily set up their own websites that load their own malicious PDFs that they crafted to do something like steal your address book or text message database. In a pre-emptive attempt to combat this, BGR has been informed that a plugin named “PDF Loading Warner” has been created, which will hooks into the system and displays a warning before a PDF can be displayed.
If you install this plugin and navigate to a website that should not be showing a PDF and get this warning, then you are able to click “Cancel” and the system will block the PDF from loading and subsequently stealing your data. It should be available from Cydia in the next day or two we hear, or more experienced users can grab the .deb file here and install it manually via SSH or iFile.
A lot of work has went into this. Simply navigate to the following URL on your device’s browser to jailbreak (iOS 4 only, except iOS 3.2.1 on iPad is also supported):
What’s a jailbreak?
A jailbreak is simply the ability to run apps and use themes and tweaks not approved by Apple. Jailbreaking doesn’t slow down your device or use any extra battery. A jailbreak lets your device be how you want it.
How can I be sure that I can always jailbreak in the future?
Firstly, don’t update past 4.0.1, the last firmware JailbreakMe supports. Secondly, and arguably most importantly, allow Cydia to “make your life easier”. This will allow you to always restore back to the latest firmware available when you select that option.
Is JailbreakMe reversible?
Of course! If you ever decide that you want to remove your jailbreak, just connect your device to your computer, sync, and then press Restore in iTunes.
Is it legal in the USA?
Yes. A new DMCA exemption was approved by the Library of Congress, specifically allowing jailbreaking.
Credits
Jailbreak by comex, website by westbaer and chpwn. Special thanks go out to BigBoss, chronic, DHowett, MuscleNerd, planetbeing, posixninja, and saurik. Thanks to everyone else that tested and helped, and all who donated.
Yeah, it’s been released for awhile on Github, and it’s exactly what we said it was in posts from months ago. Sure we didn’t have a “release” post for it, but at the same time it’s kind of funny that people are still commenting that it’s a “fake”. In fact, it’s been expanded to be even more powerful, and make all types of jailbreaks easier to create on all platforms.
Here is the link to the portion of it that you know as “greenpois0n”, though: link
Major props to comex for this exploit! Pulling this off required some very epic skillz.
Facts
- This is a userland jailbreak, and can be patched. Same as iBoot exploits. The only kind that cannot be patched is a bootrom exploit, and none have been publicized for the iPod touch 3G, iPhone 3G[s] with new bootrom, or iPad yet, as a bootrom exploit is much more valuable.
- There is no set release date.
- For any non-believers, this video conforms to the guidelines set forth here by MuscleNerd.
- Most importantly, if you didn’t already understand, this exploit is untethered
- It is compatible with both the iPhone 3G[s] with new bootrom, the iPod touch 3G, and best of all, it will probably work perfectly on the iPad as the method is a bit different than usual.